A NULL pointer dereference flaw was discovered in libvirt before version 5.0.0 in the way it gets interface information through the QEMU agent. An attacker in a guest VM can use this flaw to crash libvirtd and cause a denial of service. CREATE(Triage): {Link=https://nvd.nist.gov/vuln/detail/CVE-2019-3840 User=admin}